Apply on Employer Site

Blue Shield of California · 11 hours ago

Cybersecurity Quantitative Risk Analyst, Senior

California, United States

Full-time

Hybrid

Senior Level, Lead/Staff

5+ years exp

Blue Shield of California is part of the Ascendiun Family of Companies, focusing on innovative healthcare solutions. The Cybersecurity Quantitative Risk Analyst will lead risk quantification efforts, oversee detailed quantitative analysis on various risks, and collaborate with cross-functional teams to inform business strategy and executive decision-making.

Financial ServicesHealth InsuranceNon Profit

H1B Sponsor Likely

Responsibilities

Lead and further develop the existing risk quantification function, ensuring alignment with the FAIR methodology, NIST CSF 2.0, Unified Control Framework (UCF) and healthcare regulatory requirements (e.g., HIPAA, PCI)

Oversee and perform detailed quantitative analysis on IT, operational and business risks using ThreatConnect and other FAIR-based platforms. Translate quantified risks into financial and business terms to support risk appetite, risk tolerance, and risk-informed decision-making

Design and lead scenario analyses and simulations to evaluate risks related to cybersecurity, IT operations, third parties, and strategic initiatives. Provide quantified insights to support investment justification, control prioritization, and vendor or partner selection

Partner with stakeholders in IT, Enterprise Architecture, Finance, and Operations to ensure risk quantification informs business strategy. Support executive and board-level risk reporting with clear, actionable insights

Develop and implement metrics, KRIs, and KPIs to monitor and communicate risk exposures, emerging trends, and mitigation outcomes. Leverage enterprise data warehouse and analytics platforms to produce timely, accurate, and transparent reporting

Act as an internal champion for quantitative risk management, fostering adoption across all three lines of defense. Stay current with industry best practices, frameworks, and tools; recommend new approaches to advance program maturity

Qualification

FAIR certificationThreatConnectData analyticsSQLTableauPower BIRisk ManagementAnalytical skillsCommunication skillsStrategic skills

Required

Requires Bachelor's degree preferably in one of the following: Mathematics, Statistics, Risk Management, Business, Computer Science, or a related field desired

Requires 5 years of related quantitative risk experience

Certifications: FAIR certification strongly preferred; additional certifications such as CRISC, CISA, CISSP, or HITRUST are a plus

Technical Skills: Experience with ThreatConnect or similar FAIR-based quantification platforms. Strong data analytics and reporting experience (Tableau, Power BI, etc.); SQL and data warehouse knowledge a plus

Communication Skills: Proven ability to communicate complex risk concepts to executives, boards, regulators, and non-technical stakeholders

Analytical & Strategic Skills: Demonstrated ability to build quantitative models, interpret results, and deliver actionable insights that influence high-level business decisions

Company

Blue Shield of California

Glassdoor3.8

Blue Shield of California is a health insurance service provider.

Founded in 1939

San Francisco, California, USA

5001-10000 employees

https://www.blueshieldca.com

H1B Sponsorship

Blue Shield of California has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (1)

2022 (41)

2021 (20)

2020 (31)